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PENDING CLAIMS 



(Unamended) A small footprint device comprising: 

a. at least one processing/element; 

b. memory, and 

c. a context barrier, usihg said memory and running on said processing element, for 
isolating program modules from one another. 



25. (Unamended) The small footprint device of claim 1 in which said at least one processing 
element is a virtual machine running on a processor. 

26. (Unamended) The small footprint device of claim 25 in which said virtual machine runs on 
top of a card operating system. 

27. (Unamended) The small footprint device of claim 1 in which groups of one or more 
program modules are run in separate contexts. 

28. (Unamended) /The small footprint device of claim 27 in which the context barrier is 
configured to/prevent access from one program module to a program module in a different 
context. 



29. (Unamended) The small footprint device of claim 27 in which said context barrier allocates 
separate re spective name spaces for each context. 
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30. (Unamended) The small footprint/device of claim 27 in which said context barrier allocates 
separate respective memory spaces for each context. 



3 1 . (Unamended) The small footprint device of claim 1 in which at least one program module 
comprises a plurality of applets 

32. (Unamended) The small footprint device of claim 1 in which said context barrier enforces 
at least one security check on at least one of principal, object or action to prevent access 
from a principal in one context to an object in a different context. 

33. (Unamended) The smaly footprint device of claim 32 in which groups of one or more 
program modules are run in separate contexts. 

34. (Unamended) The srAall footprint device of claim 33 in which the context barrier prevents 
access from one program module to a different program module. 

35. (Unamended) Thfi small footprint device of claim 33 in which at least one security check is 
based on partial name agreement between a principal and an object. 



36. (Unamended)/ The small footprint device of claim 33 in which at least one security check is 
based on memory space agreement between a principal and an object. 
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37. (Unamended) A method of operating a small footprint device, comprising the step of 

preventing access from one prograpi module to a different program modules using a context 

/ 

barrier. / 



38. (Unamended) The method of^laim 37 in which the context barrier is implemented using a 
virtual machine. 

39. (Unamended) The small footprint device of claim 38 in which groups of one or more 
program modules are run in separate contexts. 

40. (Unamended) The method of claim 39 in which the context barrier prevents access from 
one program module to a different program module. 

41 . (Unamended) / The method of claim 40 in which the context barrier will not permit a 
principal to /ccess an object unless both principal and object are part of the same name 
space. 



42. (Unamended) The method of claim 39 in which the context barrier will not permit a 
principal to access an object unless both principal and object are part of the same memory 
space. 
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43. (Unamended) The method of claijii 37 in which the context barrier will not permit a 
principal to perform an action on Ln object unless both principal and object are part of the 

/ 

same context. / 



44. (Unamended) The method of claim 43 in which the context barrier will permit a principal to 
perform an action on an object when they are not part of the same context if the principal is 
authorized to perform the action on the object. 

45. (Unamended) The method of claim 44 in which the principal is authorized if it passes at 
least one security check. 

46. (Unamended) The method of claim 45 in which said at least one security check is one of a 
plurality of security checks. 

47. (Unamended/ The method of claim 44 in which, if a principal in a first context is authorized 
to perforin one or more actions on an object in a second context, when the action is 
performed/it will execute within the second context. 

48. (Unamended) The method of claim 47 in which, when one or more actions are authorized 
in the sicond context, subsequent actions will be authorized based on executing in the 
secondf context, and a principal in the second context will be able to access objects in the 
second context. 
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49. (Unamended) The method pf claim 48 in which, when one or more actions complete in the 
second context, execution will return to the first context. 



50. (Unamended) The method of claim 47 in which, when action is undertaken in the second 
context that requires acces^ to an object in a third context, the action will execute within the 
third context. 

5 1 . (Unamended) The method of claim 50 in which switches to a new context will occur any 
time action is authorized on an object in a new context. 

52. (Unamended) A comguter program product, comprising: > 

a. a memory medium; and 

b. a computer controlling element comprising instructions for implementing a context 
barrier on a sm&ll footprint device. 

53. (Unamended) T^ie computer program product of claim 52 in which said memory medium is 
a carrier wave. 

54. (Unamended)/ A computer program product, comprising: 

a. a memory medium; and 

b. a computer controlling element comprising instructions for separating a plurality of 
programs on a small footprint device by running them in respective contexts. 
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55. (Unamended) The computer program product of claim 54 in which said mem . ory medium 



is a earner wave. / 



/ 



^ --^__56. (Unamended) A ^airier wave carrying instructions for implementing a context barrier on a 
small footprint device over a communications link. 
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57. (Unamended) A carrier wave carrying instructions over a communications link for 

separating a plu ality of programs on a small footprint device by running them in respective 
contexts. 



58. (Unamended) I A method of shipping code over a network, comprising the step of 

transmitting a block of code from a server, said block of code comprising instructions over a 
communications link for separating a plurality of programs on a small footprint device by 
running thenn in respective contexts. 
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